Turbos Finance and the Cetus Exploit
Turbos Finance, the flagship project in the Sui ecosystem, recently published an analytical report regarding the Cetus exploit. The report underscores that the Turbos platform continued to function normally immediately following the incident.
“At 11:34 AM UTC on May 22, 2025, Cetus announced a vulnerability in its protocol, which had a valuation of $2.23 billion. As a protocol within the Sui mainnet ecosystem, Turbos DEX is built on a separate, secure, and resilient codebase that does not originate from any fork of other platforms, including Cetus.”
In response to Cetus’s announcement, the Turbos team promptly initiated a comprehensive internal security review. They discovered that the checked_shlw function associated with the Cetus exploit was present in their codebase but had never been invoked or utilized. A thorough examination of their Constant Product Liquidity Market Maker (CLMM) repository confirmed that checked_shlw appeared only once in its definition and was not called anywhere else, thereby ensuring that no vulnerabilities existed in Turbos’ operations.
By 12:30 PM UTC, less than an hour after the Cetus announcement, Turbos engaged the Mysten security team along with several reputable external security firms, including OtterSec, MoveBit, and CertiK, to conduct independent audits of their codebase. All of these experts confirmed that the vulnerability related to the Cetus exploit would not affect Turbos, providing strong evidence of the platform’s integrity.
By 1:00 PM UTC, several major DEXs within the Sui ecosystem had paused their services. However, due to the robust security measures implemented by Turbos, the platform successfully maintained uninterrupted on-chain transactions on the Sui network during this critical time.
